---
- branch: MAIN
  date: Wed Jan 14 17:07:12 UTC 2015
  files:
  - new: '1.57'
    old: '1.56'
    path: pkgsrc/www/py-django/Makefile
    pathrev: pkgsrc/www/py-django/Makefile@1.57
    type: modified
  - new: '1.40'
    old: '1.39'
    path: pkgsrc/www/py-django/distinfo
    pathrev: pkgsrc/www/py-django/distinfo@1.40
    type: modified
  - new: '1.9'
    old: '1.8'
    path: pkgsrc/www/py-django14/Makefile
    pathrev: pkgsrc/www/py-django14/Makefile@1.9
    type: modified
  - new: '1.5'
    old: '1.4'
    path: pkgsrc/www/py-django14/distinfo
    pathrev: pkgsrc/www/py-django14/distinfo@1.5
    type: modified
  id: 20150114T170712Z.edd80176e10dc12ff9d85b47b57b7b26b14b47a7
  log: |
    Fixed securify issues:
    * WSGI header spoofing via underscore/dash conflation
    * Mitigated possible XSS attack via user-supplied redirect URLs
    * Denial-of-service attack against django.views.static.serve
    * Database denial-of-service with ModelMultipleChoiceField
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/www'
  unixtime: '1421255232'
  user: adam